LabCorp experienced a breach this past weekend , which it nows says was a ransomware attack Attack.Ransom . The intrusion has also prompted concerns that patient data may have also been stolen Attack.Databreach . One of the biggest clinical lab testing companies in the world , LabCorp , was hit Attack.Ransom with a `` new variant of ransomware '' over the weekend . `` LabCorp promptly took certain systems offline as a part of its comprehensive response to contain and remove the ransomware from its system , '' the company told PCMag in an email . `` We are working to restore additional systems and functions over the next several days . '' LabCorp declined to say what variant of ransomware was used . But according to The Wall Street Journal , the company was hit Attack.Ransom with a strain known as SamSam . In March , the same strain attacked Attack.Ransom the city of Atlanta 's IT network . Like other ransomware variants , SamSam will effectively lock down a computer , encrypting all the files inside , and then demand Attack.Ransom the victim pay up Attack.Ransom to free the system . In the Atlanta attack Attack.Ransom , the anonymous hackers demanded Attack.Ransom $ 51,000 , which the city government reportedly refused to pay Attack.Ransom . How much the hackers are demanding Attack.Ransom from LabCorp is n't clear ; the company declined to answer further questions about the attack Attack.Ransom or if it will pay the ransom Attack.Ransom . The lab testing provider first reported the breach on Monday , initially describing it as `` suspicious activity '' on the company 's IT systems that relate to healthcare diagnostics . This prompted fears that patient data may have been stolen Attack.Databreach . The North Carolina-based company processes more than 2.5 million lab tests per week and has over 1,900 patient centers across the US . `` LabCorp also has connections to most of the hospitals and other clinics in the United States , '' Pravin Kothari , CEO of cybersecurity firm CipherCloud , said in an email . `` All of this presents , at some point , perhaps an increased risk of cyber attacks propagating and moving through this expanded ecosystem . '' On Thursday , LabCorp issued a new statement and said the attack Attack.Ransom was a ransomware strain . At this point , the company has found `` no evidence of theft Attack.Databreach or misuse of data , '' but it 's continuing to investigate . `` As part of our in-depth and ongoing investigation into this incident , LabCorp has engaged outside security experts and is working with authorities , including law enforcement , '' the company added .

Two Iranian men already indicted in New Jersey in connection with a broad cybercrime and extortion scheme targeting government agencies , cities and businesses now face new federal charges in Georgia related to a ransomware attack Attack.Ransom that caused havoc for the city of Atlanta earlier this year . A federal grand jury in Atlanta returned an indictment Tuesday accusing Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri of violating the Computer Fraud and Abuse Act , federal prosecutors said in a news release Wednesday . The New Jersey indictment against the pair was filed last month on broad conspiracy charges that included the Atlanta cyberattack . Byung “ BJay ” Pak , the U.S. attorney in Atlanta , said in a news release that the Atlanta indictment was sought in coordination with the earlier indictment and seeks to ensure that “ those responsible for the attacks face justice here as well. ” The Atlanta indictment accuses the two men of launching a ransomware attack Attack.Ransom against Atlanta that encrypted vital city computer systems . The attack significantly disrupted city operations and caused millions of dollars in losses , prosecutors said . The Department of Justice has said the two men remain fugitives and are believed to be in Iran , though they are not believed to be connected to the Iranian government . No attorney was listed for either man in online court records . In the Atlanta attack Attack.Ransom , a ransomware known as SamSam was used to infect about 3,789 computers belonging to the city , prosecutors said . The ransomware encrypted the files on the computers and showed a ransom note demanding payment Attack.Ransom for a decryption key . The note demanded Attack.Ransom 0.8 bitcoin per affected computer or six bitcoin to decrypt all affected computers . Atlanta Mayor Keisha Lance Bottoms said in the days after the ransomware attack Attack.Ransom that the ransom demand Attack.Ransom was equivalent to $ 51,000 . The ransom note provided a bitcoin address to pay the ransom Attack.Ransom and a website accessible only on the dark web , where it said the city could retrieve the decryption key , prosecutors said . The decryption key became inaccessible shortly after the attack , and the city didn ’ t pay the ransom Attack.Ransom , prosecutors said . The New Jersey indictment filed Nov 27 accuses the two men of creating the SamSam ransomware and says it was used to encrypt the computers of more than 200 victims , including government agencies , cities and businesses . Among the other victims are the city of Newark , New Jersey , the Colorado Department of Transportation , the Port of San Diego and six health care companies across the U.S. , according to the Justice Department . The New Jersey charges include conspiracy to commit wire fraud and conspiracy to commit fraud and related activity in connection with computers . The overall scheme allowed the hackers to make about $ 6 million and caused the victims to lose more than $ 30 million , prosecutors said .